mirror of
https://github.com/0xMarcio/cve.git
synced 2026-02-27 16:53:39 +00:00
904 B
904 B
CVE-2004-0771
Description
Buffer overflow in the extract_one function from lhext.c in LHA may allow attackers to execute arbitrary code via a long w (working directory) command line option, a different issue than CVE-2004-0769. NOTE: this issue may be REJECTED if there are not any cases in which LHA is setuid or is otherwise used across security boundaries.
POC
Reference
- http://marc.info/?l=bugtraq&m=108668791510153
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9595
Github
No PoCs found on GitHub currently.